Hi,
and welcome to the forums.
Yes, this can be caused by an IPS sensor.
There should be entries in the logs showing you an alert that someone is spamming. In combination with ' quarantine source address' this could block outgoing traffic for more than just one PC.
To test:
create a new policy ABOVE all others, with source=LAN, dest=external mail server, service=ANY, action=ACCEPT. Customize the policy table display to show ' Count' as well as the usual columns. Wait until you see Count > 0 bytes.
What do you gain by this?
- you can confirm that this policy is hit
- as there are no UTM measures configured in this new policy there is no way the FGT could block traffic
Then, send 50 eMails to yourself to test.
Ede
"Kernel panic: Aiee, killing interrupt handler!"